Aktualne oferty pracy

  • Wszystkie
  • Warszawa
  • Kraków
  • Lublin
  • Poznań
  • Wrocław
  • Szczecin

Zostań sponsorem

Dołącz do grona Partnerów SecOps Polska!

EPAM

Senior Cloud Security Architect

Kraków
EPAM

EPAM is a leading global provider of digital platform engineering and development services. We are committed to having a positive impact on our customers, our employees, and our communities. We embrace a dynamic and inclusive culture. Here you will collaborate with multi-national teams, contribute to a myriad of innovative projects that deliver the most creative and cutting-edge solutions, and have an opportunity to continuously learn and grow. No matter where you are located, you will join a dedicated, creative, and diverse community that will help you discover your fullest potential.

Responsibilities:

  • Based on your experience, industry trends, technical skills, and knowledge you will produce:
    • Security architecture
    • Proof of concepts
    • Security consulting, guidance, assessments
    • Production implementations
  • You have extensive abilities for dealing with security architecture issues in multi-cloud systems, hybrid infrastructures, containers, microservices, modern stacks
  • You will conduct Security assessments for enterprises, for cloud\hybrid workloads
  • Gather business, functional, and non-functional requirements and convert them to a roadmap, streams and work breakdown structures, estimates
  • Help define Information Security Management Systems and Security Programs for enterprises
  • Execute Proof of Concepts, conduct Research and Development activities
  • Technically support Account team during the sales process, prepare pre-sales materials, and RFP/RFI responses
  • Provide technical consultations to the client’s leads from engineering, infrastructure, development, database, security operations teams
  • Align with VP and C-level on the business goals and how they are addressed in proposed solutions
  • Mentor Security Architects.

Requirements:

  • 5+ years of security experience
  • 10+ years in the industry experience in any of the following: systems, solution architectures, infrastructure, cloud & application development
  • Security architecture & consulting experience in several of the following domains:
    • Cloud Security (either Azure, AWS, or GCP)
    • Application Security
    • Identity & Access Management (and related)
    • Threat & Vulnerability Management
    • MDM/MAM
    • Data protection
    • Security Operations Center
    • Security Testing
    • Etc
  • Experience configuring security controls and developing architectures according to industry standards (NIST SP 800-53/ISO 27001/PCI DSS; HIPAA, HITRUST, GDPR, etc.)
  • Experience successfully implementing any Enterprise Security programs
  • Experience successfully delivering security service-oriented projects
  • Experience with security assessments
  • Hands-on proficiency is a must.

We offer:

  • Vast opportunities for self-development: online courses and library, experience exchange with colleagues around the world, partial grant of certification
  • English language classes
  • Polish language classes for Foreigners
  • Career development center
  • Unlimited access to LinkedIn learning solutions
  • Possibility to relocate for short and long-term projects (ex. to USA or Switzerland)
  • Benefit package (private insurance, health care, multisport, lunch tickets, and shopping vouchers, etc.)
  • Possibility to be involved in an international project
  • Remote work options
  • Relocation package for foreign applicants as well as for people relocating within Poland

Opis stanowiska/uwagi:

Mission: Our teams of consultants, designers, architects and engineers who enable our customers to be competitive and disruptive in the marketplace through innovative technology solutions while helping them to navigate successfully through multiple waves of technology change.

If you’re looking for dynamic career in large company that still has the start-up mindset, experience fast professional growth deeply connected to technology EPAM will be the ideal place for you to shine.

EPAM is looking for a Senior Cloud Security Architect to join the Security practice to work directly with our biggest enterprise customers.

Elastic Email

Specjalista ds. bezpieczeństwa IT

Szczecin/hybrydowo
Elastic Email

Elastic Email to globalna platforma internetowa typu SaaS stworzona by pomóc małym i średnim organizacjom w prowadzeniu efektywnego email marketingu oraz dostarczaniu ich maili transakcyjnych (systemowych). Jesteśmy Polsko-Kanadyjską firmą, która istnieje na rynku i odnosi sukcesy w branży od ponad 10 lat.

Całą infrastrukturę techniczną i oprogramowanie tworzymy i rozwijamy samodzielnie, co pozwala na pełną niezależność w zakresie realizowanych projektów. Nieustannie doskonalimy nasze produkty i poszerzamy wachlarz usług, aby dostarczać naszym użytkownikom jedne z najlepszych narzędzi mailingowych na świecie – takich, które wybierają programiści i uwielbiają marketerzy.

Do Twoich obowiązków będzie należało:

  • Analiza zagrożeń, wynajdywanie oraz definiowanie słabych punktów systemu,
  • Tworzenie systemów, rozwiązań i procedur, które mają wykazywać możliwie największą odporność na zagrożenia oraz podejmowanie działań bezpośrednich w przypadku zagrożenia,
  • Współrealizowanie projektów związanych z infrastrukturą bezpieczeństwa IT,
  • Tworzenie i opiniowanie regulacji wewnętrznych dotyczących zarządzanych systemów,
  • Współtworzenie polityki bezpieczeństwa informacji,
  • Aktualizacja istniejących rozwiązań opracowanych na potrzeby regulacji krajowych lub rozporządzeń/dyrektyw UE,
  • Regularne audyty istniejących procesów i procedur związanych z funkcjonowaniem firmy oraz tworzenie nowych procesów i procedur zapewniających możliwie największą odporność na zagrożenia,
  • Opiniowanie zawieranych umów,
  • Przygotowywanie materiałów szkoleniowych i szkoleń dla pracowników firmy z zakresu bezpieczeństwa informacji.
  • Opracowywanie strategii komunikacji w przypadku awarii systemów, ataków hackerskich lub innych nieprawidłowości związanych z nieszczelnością systemu.

Oczekujemy, że:

  • Masz praktyczne doświadczenie na przedstawianym (lub podobnym) stanowisku,
  • Doskonale mówisz i piszesz w języku angielskim,
  • Jesteś osobą samodzielną, konsekwentną dokładną i wytrwałą w działaniu,
  • Potrafisz świetnie współpracować w zespole, zwłaszcza w zespole programistów czy Administratorów Systemów,
  • Interesujesz się zagadnieniami dotyczącymi bezpieczeństwa IT i stale poszerzasz swoją wiedzę w tym zakresie,
  • Masz podstawową wiedzę dotyczącą systemów baz danych (np. MySQL),
  • Znasz prawo polskie, a także masz wiedzę dotyczącą rozporządzeń i dyrektyw UE niezbędnych przy zachowaniu
    bezpieczeństwa informacji/danych,
  • Potrafisz przeprowadzać analizę danych i wyciągać stosowne wnioski, na podstawie których opracowywane będą
    procesy i procedury bezpieczeństwa,
  • Jesteś osobą kreatywną i komunikatywną, potrafisz prezentować swoje pomysły w sposób zrozumiały i adekwatny
    do sytuacji oraz dobrze przyjmujesz feedback,

Miło, jeśli dodatkowo:

  • Rozumiesz specyfikę produktów budowanych w modelu SaaS,
  • Masz wiedzę dotyczącą podstawowych protokołów sieciowych (DNS, HTTP, SMTP),
  • Masz wiedzę lub doświadczenie w pracy z systemami Windows/Linux (na poziomie administracyjnym),
  • Potrafisz przeprowadzić analizę złośliwego oprogramowania (malware),
  • Masz wiedzę lub doświadczenie w projektowaniu systemów informatycznych,
  • Masz wiedzę lub doświadczenie w przeprowadzaniu testów penetracyjnych aplikacji webowych,
  • Masz wiedzę dotyczącą bezpiecznego programowania i jesteś osobą otwartą na współpracę z programistami
  • Posiadasz certyfikaty potwierdzające Twoją wiedzę i umiejętności.

W zamian oferujemy Ci:

  • Stabilne zatrudnienie w pełnym wymiarze czasu, w oparciu o umowę o pracę lub kontrakt B2B,
    zależnie od Twoich preferencji,
  • Wynagrodzenie w wysokości 13,000 – 18,000 netto B2B lub ekwiwalent przy umowie o pracę,
  • Wszelkie narzędzia niezbędne do pracy (tj. komputer, monitor itp.),
  • Pracę w samym centrum Szczecina, w ciekawej lokalizacji na Starym Mieście, w biurze zlokalizowanym w naszej własnej, historycznej kamienicy,
  • Elastyczny czas pracy, możliwość pracy zdalnej i łączenia pracy z urlopem w postaci „workation”
  • Udział w ciekawych projektach i wiele innych możliwości rozwoju Twoich umiejętności,
  • Realny wpływ na rozwój firmy dzięki Twoim pomysłom i rozwiązaniom,
  • Pracę w międzynarodowym środowisku i niemal rodzinną atmosferę w zespole,
  • Ciekawy pakiet dodatkowych benefitów pozapłacowych.

Opis stanowiska/uwagi:

Jeśli czujesz, że ta praca to idealne wyzwanie dla Ciebie i chcesz dołączyć do naszego zespołu, wyślij swoje CV z dopiskiem „Specjalista ds. bezpieczeństwa IT”.

Relativity

Product Security Manager 21-0600

Kraków
Relativity
We are Relativity. A market-leading, global tech company that equips legal and compliance professionals with a powerful platform to organize data, discover the truth, and act on it.  The US Department of Justice, 199 of the Am Law 200, and more than 329,000 enabled users trust Relativity during litigation, internal investigations, and compliance projects.

Our SaaS product, RelativityOne, has become the fastest-growing product in the company’s history and we have consistently been named a great workplace. As we grow, we continue to seek individuals that will bring their whole, authentic self to our team.

We believe that great talent is not bound by geography and that what you do matters more than where you do it. Relativity has assumed a hybrid work strategy, allowing choice and flexibility for employees to work either from home, a physical Relativity office location (once safe to do so), or a combination of the two, within certain logistical boundaries. Submit your application to learn more from our recruiters or contact us for more details.

What are the core duties of this role?

  • Lead a team of software security experts from various spaces, including DevSecOps, Application Security, and Cloud Security.
  • Lead development of security tooling that enables Relativity’s engineering teams in building our product faster and with security built-in at every stage of the SDLC
  • Ensure our code is secure, through multiple processes, including static and dynamic analysis
  • Partner with other stakeholders to work on cross-functional projects
  • Manage vendors performing external penetration tests
  • Drive adoption of Security Champion program
  • Act as an escalation point for customer issues
  • Coach and manage the performance of individual contributors

Responsibilities:

  • Provide Security guidelines for preventing vulnerabilities
  • Perform threat modeling
  • Interact with scrum teams to seek implementation and completion of security requirements
  • Support penetration tests conducted by 3rd parties
  • Support Security Champion program
  • Offer estimates and feedback during sprint planning.

Preferred Qualifications:

  • Previous experience as a core contributor on full-stack web application projects
  • Previous experience working in .NET projects.
  • Previous experience working with version control systems such as Git.

Minimum Qualifications:

  • Deep interest in software development, security, and protecting client software systems  from malicious actors both inside and out
  • Demonstrated ability to effectively lead and coach technical teams.
  • Ability to work in multiple mainstream programming languages such as C#, Python, or JavaScript, in a full stack developer environment.
  • Familiarity with common software vulnerabilities (ex: OWASP Top 10) and their remediations.
  • Ability to take feedback and strive for continual improvement.
  • College degree or relevant experience.

Opis stanowiska/uwagi:

Relativity wants to speak to experienced Product Security Managers, who are ready for a challenging and rewarding opportunity in our Calder7, Relativity’s Security Team.  Calder7’s mission is to obstruct adversaries, defend the fortress, and accelerate our talent. Our Calder7 teams are located in the USA and Poland, serving the needs of employees and customers in North America, EMEA, and APAC.

As our Product Security Manager, you will lead our Application Security and Cloud Security teams in Poland. You will ensure the teams operate in tandem with their US counterparts, execute on the shared roadmap, and tackle complex engineering challenges to bring robust security into our product and services. This role involves both, technical leadership and people management within a high-performing matrix environment. Being part of Global Security organization, comprising of a team of 8 security experts with functional reporting lines to Chicago.

Relativity

Advanced Cloud Security Engineer

Kraków
Relativity

We are Relativity. A market-leading, global tech company that equips legal and compliance professionals with a powerful platform to organize data, discover the truth, and act on it.  The US Department of Justice, 199 of the Am Law 200, and more than 329,000 enabled users trust Relativity during litigation, internal investigations, and compliance projects.

Our SaaS product, RelativityOne, has become the fastest-growing product in the company’s history and we have consistently been named a great workplace. As we grow, we continue to seek individuals that will bring their whole, authentic self to our team.

We believe that great talent is not bound by geography and that what you do matters more than where you do it. Relativity has assumed a hybrid work strategy, allowing choice and flexibility for employees to work either from home, a physical Relativity office location (once safe to do so), or a combination of the two, within certain logistical boundaries. Submit your application to learn more from our recruiters or contact us for more details.

The Cloud Security Team

  • Cloud Security provides best in class cloud governance and performs Identity and Access Management (IAM) for our cloud environment and tooling. This team gets to work on applications and services that support our cloud provider plane, backend infrastructure, and the RelativityOne application frontend. We tackle some of the most complex and rewarding problems in security today: how to secure a cloud based web application while also making it easy for engineers to do their work and how to enforce and maintain IAM across multiple Active Directories, tools, and application planes.

Why you would enjoy this job:

  • You enjoy empowering others to make intelligent decisions about the secure state of their applications.
  • You enjoy building tools and applications to deliver secure software in a SaaS environment
  • You enjoy working in a modern cloud environment.
  • You enjoy solving and making complicated problems as simple as possible.
  • You enjoy breaking and fixing software.
  • You enjoy making your software easy to use.
  • You enjoy learning about cloud technologies and how to secure them.

Role Responsibilities

  • Design & build security products to establish best in class cloud security.
  • Learn and internalize software development best practices.
  • Implement automation for cloud governance and operational work.
  • Partner with other cross functional teams and provide guidance on a SecDevOps approach to securing our cloud operations.
  • Build IAM tooling and services to ensure that the principle of least privilege and role-based access controls are maintained.
  • Drive security improvements to our cloud environment by analyzing the environment against CIS controls, audit requirements, vulnerability scans, penetration tests and threat intelligence.
  • Support the Incident Response process as a cloud Subject Matter Expert(SME).
  • Onboard junior developers.

Preferred qualifications

  • 3+ years software development experience on commercial-grade systems and applications.
  • Previous experience working in .NET software development.
  • Experience in web development using JavaScript, ASP.NET, AJAX is a plus.
  • Experience with Azure or other cloud platforms (GCP, AWS).
  • Experience working with CI/CD is a significant plus.
  • Understanding of SecDevOps principals.

Minimum qualifications

  • Professional software development experience as full stack developer, experience in programming languages such as C#, Python, or Java.
  • Familiarity with common software vulnerabilities (ex: OWASP Top 10) and their remediation.
  • Familiarity with common Identity and Access Management principles such as Least Privilege

Opis stanowiska/uwagi:

As an Advanced Cloud Security Engineer at Relativity you will leverage your software development skills to design, build, and maintain software solutions that enable our teams to interact with cloud resources and our cloud-based SaaS software, RelativityOne.

This is an opportunity to work in a security department focused on SecDevOps to secure a dynamic web system built on top of different technologies such as containers and native cloud applications.

To ensure a secure by default state you will:
  • Create tools providing actionable security data within RelativityOne.
  • Enable Relativity developers to make informed security decisions by building security guardrails.
  • Build and maintain applications that govern our identity and access management in our cloud platform, SaaS product, and backend infrastructure.